Primary

Context

ZTE GoldenDB Database Permission Management Vulnerability Allowing Privilege Escalation and Content Deletion

Vulnerability

A permission management and access control vulnerability has been identified in ZTE GoldenDB database versions 6.1.03.09, 6.1.03.10, 7.2.01.01, and Lite7.2.01.01. This vulnerability allows attackers to manipulate requests to bypass privilege restrictions, enabling them to delete content.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of content within the database.

Remediation

Users can upgrade to ZTE GoldenDB versions 6.1.03.11, 7.2.01.01P1, or Lite7.2.01.01P1. For assistance, contact the ZTE Global Customer Support Center.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ZTE GoldenDB Database Permission Management Vulnerability Allowing Privilege Escalation and Content Deletion

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating